6.2 What security processes do you follow?

We continually evaluate and maintain our internal procedures and train our employees on a regular basis to minimize the risk of any breach to our quality management, information security, or data privacy policies. For the very unlikely case of a breach, our incident workflows outline how to manage this internally and when to inform data protection authorities.

In addition, external authorities and internal teams regularly audit our information security controls. This ensures we comply with industry regulations and standards.

Internal audits are conducted regularly in line with legal, industry-standard, or other applicable criteria (such as ISO 27001, NHS Data Security and Protection Toolkit, GDPR, etc.) to ensure that security and quality controls are effective. These Internal Audits are also conducted as required by ISO 13485 (Quality Management).